Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2016-0276

Опубликовано: 09 мар. 2018
Источник: nvd
CVSS3: 6.3
CVSS2: 6.5
EPSS Низкий

Описание

IBM Financial Transaction Manager (FTM) for ACH Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, Financial Transaction Manager (FTM) for Check Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, and Financial Transaction Manager (FTM) for Corporate Payment Services (CPS) for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013 allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service (JMS) ObjectMessage object. IBM X-Force ID: 111084.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:financial_transaction_manager:*:*:*:*:*:ach_services:*:*
Версия от 3.0.0.0 (включая) до 3.0.0.12 (включая)
cpe:2.3:a:ibm:financial_transaction_manager:*:*:*:*:*:check_services:*:*
Версия от 3.0.0.0 (включая) до 3.0.0.12 (включая)
cpe:2.3:a:ibm:financial_transaction_manager:*:*:*:*:*:cps_services:*:*
Версия от 3.0.0.0 (включая) до 3.0.0.12 (включая)

EPSS

Процентиль: 76%
0.00946
Низкий

6.3 Medium

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

github логотип

GHSA-x78p-24w4-gccv

CVSS3: 6.3
github
больше 3 лет назад

IBM Financial Transaction Manager (FTM) for ACH Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, Financial Transaction Manager (FTM) for Check Services for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013, and Financial Transaction Manager (FTM) for Corporate Payment Services (CPS) for Multi-Platform 2.1.1.2 and 3.0.0.x before fp0013 allows remote attackers to execute arbitrary code via a crafted serialized Java Message Service (JMS) ObjectMessage object. IBM X-Force ID: 111084.

EPSS

Процентиль: 76%
0.00946
Низкий

6.3 Medium

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-20